CVE-2024-13007 – Codezips Event Management System SQL Injection Vulnerability

12月 29, 2024
10:18 am

CVE ID : CVE-2024-13007

Published : Dec. 29, 2024, 9:15 a.m. | 1 hour, 3 minutes ago

Description : A vulnerability, which was classified as critical, was found in Codezips Event Management System 1.0. Affected is an unknown function of the file /contact.php. The manipulation of the argument title leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-13007 – Codezips Event Management System SQL Injection Vulnerability

Elvescore.io

Recent Posts

CVE-2024-11846 – Apache Struts Reflected Cross-Site Scripting

CVE-2024-23416 – Apache Struts Deserialization Weakness

CVE-2024-23417 – Rejected reason: To maintain compliance with CNA r

CVE-2024-23418 – Apple iOS Memory Corruption Vulnerability

CVE-2024-23419 – Here is a title for a vulnerability: Apache Tomcat Authenticated Remote Code Execution Vulnerability

CVE-2024-23420 – Here is a potential title: HP Enterprise 3PAR Array Unauthenticated Remote Command Injection Vulnerability

CVE-2024-13007 – Codezips Event Management System SQL Injection Vulnerability

CVE-2024-13007 – Codezips Event Management System SQL Injection Vulnerability